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Abstract:  Cloud  computing  has  a lot  of  security 
crises  that  are  acquirement  great  concentration 
nowadays,  including  the  data  shelter,  network 
security.  Data  protection  is  one  of  the  most 
important  security  crises  that  arise  in  real  world, 
because  associations  won’t  relocate  its  data  to 
isolated  machines  if  there  is  no  definite  data 
protection  from  the  cloud  service  providers.  Many 
procedures  are  suggested  for  data  shelter  in  cloud 
computing,  but  there  are  still  a lot  of  difficulties  in 
this  subject.  The  most  popular  security  method 
includes  SAPA  i.e.  “shared  Authority  based 
Privacy  preserving  Authentication  Protocol”. 
Ambition  of  this  paper  is  to  investigate  and 
estimate  the  most  important  security  techniques  for 
data  sheltering  in  cloud  computing.  We  have 
proposed  SAPA,  the  shared  access  authority  is 
achieved  by  unidentified  access  request  and  privacy 
contemplation,  attribute  based  access  control 
allows  the  single  user  to  access  own  data.  To 
provide  the  data  invoking  from  the  other 
trustworthy  party  and  sharing  among  the  multiple 
users  proxy  re-encryption  scheme  is  used  by  the 
cloud  server.  It  indicates  that  the  proposed  scenario 
is  possibly  applied  for  enhanced  privacy- 
preservation  and  security  in  cloud  applications.  We 
have  done  the  review  study  on  this  scenario.  In  this 
paper  we  will  focused  on  implementation  of  this 
review  with  assuring  a improved  result. 


technology  but  a way  of  distribute  computing 
possessions.  Cloud  computing  usually  involves  the 
relocate,  storage,  and  dispensation  of  data.  There 
are  a lot  of  security  techniques  for  data  security  that 
are  acknowledged  from  the  cloud  computing 
providers,  and  they  all  make  available  verification, 
confidentiality,  access  control  and  agreement.  We 
propose  a shared  authority  based  privacy- 
preserving authentication  protocol  (SAPA)  to 
concentrate  on  above  privacy  issue  for  cloud 
storage. 

In  the  SAPA,  1)  shared  access  authority  is 
accomplished  by  unidentified  access  demand 
corresponding  mechanism  with  security  and 
privacy  contemplations  (e.g.,  authentication,  data 
ambiguity,  user  privacy,  and  forward  security); 

2)  Attribute  based  access  control  is  approved  to 
appreciate  that  the  user  can  only  admittance  its  own 
data  pasture; 

3)  proxyre-encryption  is  functional  by  the  cloud 
server  to  supply  data  sharing  along  with  the 
multiple  users.  Meanwhile,  universal  composability 
(UC)  model  is  established  to  prove  that  the  SAPA 
hypothetically  has  the  plan  correctness.  It 
designated  that  the  proposed  protocol  recognizing 
privacy-preserving  data  access  authority  sharing,  is 
attractive  for  more  than  one  user  mutual  cloud 
applications. 


Keyword:  RSA,  pseudo-random  number  key 
generation,  Privacy,  Cloud  Computing,  Data 
Security,  authentication,  authorization. 


1.  INTRODUCTION 


Cloud  computing  is  the  aptitude  to  access  a group 
of  computing  resources  owned  and  continued  by  a 
third  party  via  the  Internet.  It  is  not  a new 
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Fig.l:  System  Architecture 

2.  RELATED  WORK 

Chia-Mu  Yu,  Chi- Yuan  Chen,  and  Han-Chieh 
Chao  [1]  they  have  aspired  to  plummeting  both  the 
server  side  dormancy  and  the  user  side  dormancy, 
they  proposed  an  alternative  POW  design  on  the 
problem  of  unlawful  file  downloading  in  de- 
duplicated cloud  storage.  Deyan  Chen,  Hong  Zhao 
[2]  they  have  make  available  a diminutive  but  all- 
round analysis  on  data  security  and  privacy  defence 
issues  associated  with  cloud  computing  across  all 
phases  of  data  life  cycle.  Ramgovind  S,  Eloff  MM, 
Smith  E [3]  they  have  offer  an  generally  security 
observation  of  Cloud  computing.  P.  Vidhya 
Lakshmi,  Dr.  S.  Sankar  Ganesh  [4]  they  have 
introduced  a new  privacy  dispute  during  data 
accessing.  Data  confidentiality  and  data  integrity  is 
assured  by  authentication.  H.  Wang  [5]  have 
revision  proxy  provable  data  possession  (PPDP). 
Apurva  Gomase,  Prof.Vikrant  Chole  [6]  has 
projected  re-encryption  in  which  the  data  is 
encrypting  twofold.  Somesh  P.  Badhel,  Prof. 
Vikrant  Chole  [7]  have  given  a brief  review  on 
different  issues  of  data  backup  and  resurgence  of 
data  after  damage  for  Cloud  Computing  such  as 
retaining  the  cost  of  functioning  and  functioning 
complexities  as  low  as  possible.  Somesh  P.  Badhel, 
Prof.  Vikrant  Chole  [8]  have  offered  attribute 
design  of  proposed  Backup  recovery  technique  for 
cloud  computing. 

3.  SECURITY  ISSUES  AND  CHALLENGES 
OF  CLOUD  COMPUTING: 


Computing  infrastructure  uses  new  technologies 
and  services,  most  of  which  haven’t  been  fully 
estimated  with  respect  to  the  security.  Cloud 
Computing  has  several  most  important  issues  and 
disquiets,  such  as  data  security,  conviction, 
potential,  convention,  and  performances  issues. 
One  issue  with  cloud  computing  is  that  the 
administration  of  the  data  which  might  not  be  fully 
dependable;  the  risk  of  malicious  insiders  in  the 
cloud  and  the  failure  of  cloud  services  have 
arriving  a strong  attention  by  companies.  Whenever 
we  talk  about  security  of  cloud  computing,  there 
are  various  security  issues  occur  in  path  of  cloud. 

4.  PROPOSED  WORK  PLAN 

We  have  proposed  different  security  algorithms  to 
purge  the  apprehensions  regarding  data  loss, 
isolation  and  privacy  while  accessing  web  purpose 
on  cloud.  In  this  paper,  we  address  the 
abovementioned  privacy  issue  to  propose  a shared 
authority  based  privacy  preserving  authentication 
protocol  (SAP A)  for  the  cloud  data  storage,  which 
appreciates  authentication  and  authorization 
without  negotiation  a user’s  private  information. 

The  major  assistance  is  as  follows: 

1)  Categorize  a new  privacy  dispute  in  cloud 
storage,  and  deal  with  a restrained  privacy  issue 
throughout  a user  demanding  the  cloud  server  for 
data  sharing,  in  which  the  disputed  request  itself 
cannot  make  public  the  user’s  privacy  no  matter 
whether  or  not  it  can  obtain  the  access  authority. 

2)  Propose  an  authentication  protocol  to  improve  a 
user’s  access  appeal  related  privacy,  and  the  shared 
access  authority  is  accomplished  by  unidentified 
access  request  matching  system. 

3)  Apply  cipher  text  policy  feature  based  access 
direct  to  appreciate  that  a user  can  consistently 
access  it  disseminate  data  fields,  and  assume  the 
proxy  re-encryption  to  provide  stand-in  authorized 
data  sharing  among  numerous  users. 

The  remainder  of  the  paper  is  organized  as 
follows.  Section  2 introduces  related  works. 
Section  3 introduces  the  system  model  challenges, 
and  Section  4 presents  the  proposed  Authentication 
protocol  system  model.  The  UC  model  based 
formal  security  analysis  is  performed  in  Section  5 
Finally,  Sectionb  draws  a conclusion. 


Security  is  measured  as  one  of  the  most  crucial 
aspects  in  everyday  computing  and  it  is  not  altered 
for  cloud  computing  due  to  sensitivity  and 
significance  of  data  stored  on  the  cloud.  Cloud 


5.  SECURITY  ALGORITHM  USED  IN 
CLOUD  COMPUTING 

1.  RSA  ALGORITHM 
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The  most  common  Public  (Shared)  Key  algorithm 
is  RSA,  named  for  its  inventors  Rivest,  Shamir,  and 
Adleman  (RSA).  RSA  is  essentially  an  asymmetric 
encryption  /decryption  algorithm.  It  is  asymmetric 
in  the  logic,  that  here  public  key  disseminated  to  all 
through  which  one  can  encrypt  the  message  and 
private  key  which  is  used  for  decryption  is  kept 
secret  and  is  not  commune  to  everyone. 

How  RSA  is  going  to  employment  in  cloud 
upbringing  is  explained  as:  RSA  algorithm  is  used 
to  make  sure  the  protection  of  data  in  cloud 
computing.  In  RSA  algorithm  we  have  encrypted 
(from  plain  text  to  cipher  text)  our  data  to  make 
available  security.  The  principle  of  securing  data  is 
that  only  fretful  and  approved  users  can  access  it. 
After  encryption  data  is  stored  in  the  cloud  storage. 
So  that  when  it  is  mandatory  then  an  appeal  can  be 
positioned  to  cloud  provider.  Cloud  provider 
validates  the  user  and  relinquishes  the  data  to  user. 
As  RSA  is  a Block  Cipher  in  which  every 
significance  is  mapped  to  an  integer.  In  the 
projected  cloud  environment,  Public  key  is  known 
to  all  users  who  are  using  it,  whereas  Private  Key 
known  only  to  user  who  initially  owns  the  data. 
Thus  encryption  is  done  by  the  cloud  service 
provider  or  contributor  and  decryption  is  done  by 
the  cloud  user  or  customer.  Once  the  data  is 
encrypted  with  the  Public  key,  it  will  be  decrypted 
using  the  corresponding  Private  Key  only  which  is 
allotted  only  to  the  authenticated  trusted  user. 

2.  Pseudo-random  Number  Generators:  "Random" 
numbers  are  more  appropriately  mention  to  as 
pseudo-random  numbers,  and  pseudo-random 
sequences  of  such  numbers.  A pseudo-random 
number  generator  (PRNG),  also  known  as 
a deterministic  random  bit  generator  (DRBG) 
algorithm,  is  an  algorithm  for  producing  a 
progression  of  numbers  whose  properties  fairly 
accurate  the  properties  of  progressions  of  random 
numbers.  The  PRNG-generated  progression  is  not 
accurately  random,  because  it  is  entirely 
indomitable  by  a comparatively  small  set  of 
preliminary  values,  called  the  PRNG's  seed  (which 
may  include  truly  random  (dissimilar)  values). 
Even  though  progressions  that  are  closer  to 
accurately  random  can  be  produced  using  hardware 
random  number  production,  pseudo- 

random number  generators  are  significant  in 
preparation  for  their  speed  in  number  productions 
and  their  reproducibility. 

PRNGs  are  innermost  in  relevance’s  such 
as  reproduction  (e.g.  for  the  Monte  Carlo 


method),  electronic  games  (e.g.  for  bureaucratic 
generation),  and  cryptography.  Cryptographic 
applications  necessitate  the  output  not  to  be 
unsurprising  from  previously  outputs,  and 
more  complicated  algorithms,  which  do  not  come 
into  the  linearity  of  simpler  PRNGs,  are  needed. 

a.  Approximately  all  network  security  protocols 
depend  on  the  arbitrariness  of  certain  parameters. 

• Nonce  - used  to  avoid  rerun 

• Conference(session)  key 

• Exceptional  parameters  in  digital 
signatures 

b.  Monte  Carlo  reproduction  is  a statistical 
procedure  for  mathematically  solving  differential 
equations.  Randomly  generates  state  of  affairs  for 
accumulate  information. 

• Algorithm: 

- Separate  the  series  of  the  random  number 
generator  into  equivalent  intermission. 

- (Divide  into  4 intervals  for  a random  walk 
in  two  dimensions) 

- Produce  a number,  if  the  number  falls  in: 

• First  intermission,  increment  X 

• Second  intermission,  increment 
Y 

• Third  intermission,  decrement  X 

• Fourth  intermission,  decrement  Y 

- Produce  t steps  for  a random  walk  for  n 
walks. 

- Compute  the  means  squared  distance 
reached. 

- Connive  this  distance  against  time. 

- A plot  for  several  values  of  t and  distance 
should  approximately  be  linear. 

- Else  the  random  numbers  are  not  in  the 
approved  manner  disseminated. 

6.  IMPLEMENTATION  AND  RESULTS 

Implementation  of  algorithms  has  been  done  using 
Eclipse  with  Java.  Coding’s  used  for  algorithms 
have  shown  below: 

1 . Coding  1 used  for  making  Cloud  data  secure 
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the  cloud  server  will  offer  data  allocation  between 
the  multiple  users.  This  shows  that  the  projected 
method  can  functional  for  enhanced  privacy 
conservation  in  cloud  application. 
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